February 3, 2020

160 words 1 min read

KRACK Simplified

KRACK Simplified

WiFi devices have been using a security protocol called WPA2 without any known issues for over a decade. But in October 2017, two security researchers from Univers …

Talk Title KRACK Simplified
Speakers Sundar Sankaran, Ruckus Networks, an Arris Company
Conference NANOG72
Conf Tag
Location Atlanta, GA
Date Feb 19 2018 - Feb 21 2018
URL Talk Page
Slides Talk Slides
Video Talk Video

WiFi devices have been using a security protocol called WPA2 without any known issues for over a decade. But in October 2017, two security researchers from University of Leuven in Belgium published a paper describing a vulnerability with this protocol. This vulnerability gets exposed during the Key Reinstallation. Hence, this is called Key Reinstallation Attack or KRACK for short. This talk provides a simplified overview of the client and access-point loopholes that are exploited by KRACK as well as the countermeasures to address these loopholes, and concludes with a realistic assessment of exposure to this attack.

comments powered by Disqus